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Device and System Attack 
DEVICE ATTACKS (2019) 


Attempts to tamper with the system or 
apps which requires having compromised 
the device, accounted for 57% of 
detected device attacks in2019. 


MN DEVICEROOTED [I SYSTEM/APP TAMPERING 


Bi ELEVATION OF PRIVILEGES (EOP) 
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Network Threats and Attacks 


NETWORK THREATS (2019) 


i 


M CAPTIVE PORTAL 
MI UNSECURED WIFI 
NETWORK 


Network threats were through 
Unsecured or unencrypted Wi-Fi 


networks 36% , Captive portals 


25%, Network handoffs 23% 


MM RECONNAISSANCE SCANS 


M NETWORK HANDOFF OR 
DNS/PROXY CHANGE 
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iOS: In 2019, Apple patched 306 CVEs (Common Vulnerabilities and 
Exposures), 64% of which were considered “critical” security threats. 


Vulnerabilities in iOS GS CVES LE: 


and Android OS > 


Mobile OS vendors created patches for WICRITICAL [MEDIUM = Low 


1, 1 6 1 secu rity vu | nera b i | ities Android: In 2019, Google patched 855 CVEs, the majority of which (54%) were 


considered “critical” or “high” security threats. 


Android CVEs (2019) 


ME CRITICAL M HIGH EM MODERATE 


Mobile Device Technology Stack 


"Roc | ain 
y Roots of Trust Trust Ch 
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Mobile Device Attack Surface 


Global Positioning System (GPS) Cellular 


Used for voice, text, and data services 
provided by cell radio network carriers 


Use of orbiting satellites to determine 
the geographic location of the device 


Wi-Fi™ Near-Field Communication (NFC) 


Used for low data rate transfers, smart 
card emulation, and reading RFID tags 


Local area networking used for access 
to connected resources or the Internet 


Bluetooth Technology™ 


Secure Digital (SD) Card 


Used for additional storage capacity or 
transferring data between devices 


Personal area networking used for file 
sharing and linking peripheral devices 


Subscriber Identity Module (SIM) Power & Synchronization Cable 


Wired connection used for charging 
and exchanging data with a computer 


Removable hardware token providing 
data storage and cellular access 
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Mobile Ecosystem 


Public App Stores Enterprise Systems 


Communication 
Networks 


CS 
= 


Application 


Wi-Fi™ 
Networks À ha 
Internet 
Firmware ( |) 
-i 


Cellular 
Infrastructure 


Access & Mobility 
Management 


Device & OS Vendor 
Infrastructure 
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Device Platforms 


Android os °°° 


Android Things 


Android TV (é) T 


Chrome OS 


Wear OS 


Q 


oH 


iOS Released 
Mac OS 
Apple Watch 
Apple TV 


Windows 10 
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Mobile Security Solutions 


Mobile Threat R 


e Lifecycle 
Management 

e MDM 

e Visibility 

e App Store 

e Containerization 

e Integration with 
Apple, Google 
and Microsoft 
eco-systems 


e Device — OS 
versions, 
security update, 
system 
parameters, 
device 
configuration, 
firmware 

e OS 
Vulnerabilities 

e Network VM 


e App VM — MATD 


e Anti-Virus 

e Anti-Mobile 
Phishing 

e Device Attack 
Protection 

e Content 
Filtering 


Mobile Policy 
Compliance 


e Integration with 
PC module for 
NIST, GDPR, CIS, 
PCI and rest 

e App Compliance 

e Define Rules 


Enterprise 
Integrations 


e Mobile Identity 
and Access 
Management 

e Mobile 
Information 
Protection and 
Control 

e Mobile Gateway 
and Access 
Protection 
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Complete Visibility x 


In a single pane of glass, gain the 
visibility of all mobile devices. 


DISTRIBUTION BY OPERATING SYSTEM DISTRIBUTION BY OWNERSHIP 


o o 


M Ready for Re-enroliment: 1 


ASSET STATUS 
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Integration with Global Asset Inventory 


Devices enrolled in 
SEM will get listed in 
Global Asset 
Inventory 
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Global IT Asset Inventory 


Managed v 


Software 


HOME 


DASHBOARD 


INVENTORY 


de 


inventory.source: ` SEM‘ 


06 Dec 2009 1... v 


0) TOP HARDWARE CATEGORIES 
Total Assets De 
Mobile 


MANUFACTURER Grep Asset yi Y 

Unknown 4 

Samsung 2 

Apple i user_Android_samsung 

Huawei 1 192.168.250.28 

Lenovo 1 6C:C7:EC:11:E0:DE 

TAGS Vishakha_Android_HU... 
192.168.248,39 

ERM F4:BF:80:D1:DA:72 

SEM 

ReEval-OS_REGE... 1 amkumar_Android_sa... 

abhishek 1 192.168.251.400 

ITAM_19091209 1 OC:E0:DC:AB:07:A7 


qg3_Android_samsung 
0.0.0.0,192.168.250.28 
6C:C7:EC:11:E0:DE 


TOP OPERATING SYSTEMS CATEGORIES 


preci 
Unknown Unidentified 

Google Android Pie Samsung 

9.0 Galaxy Note 9 SM-N96 
Smartphone 

Google Android Nougat Huawei 

7.0 MediaPad T3 10 
Tablet 

Google Android Marshmallow Samsung 


6.0.1 


Google Android Pie 
9.0 


Galaxy On7 SM-G600FY 
Smartphone 


Unknown SM-N960F Sa... 


SEM 
Updated: Nov 27 2019 


SEM 
Updated: Oct 15 2019 


SEM 
Updated: Sep 23 2019 


SEM 
Updated: Sep 13 2019 


Introducing VM 
for Mobility 
(Beta) 


In a single pane of glass, gain the 
visibility of all vulnerable mobile 
devices 


Initial release include device-based 
threats 

- Android and iOS OS vulnerabilities 
- Detection of rooted/Jailbroken 
devices 


- Encryption status 
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Secure Enterprise Mobility BETA 


SEM Mobile Vulnerability Management + 


+ 


21 


vO% 
showing last 1 day 


VULNERABILITIES BY SEVERITY 


MOST VULNERABLE ASSETS 


Dave_Android_samsung 
Rohit_Android_samsung_1 
Peter_ioS_Apple 
Lisa_Android_LGE 
Peter_Android_HUAWEI 


Lisa_Android_Google 


DASHBOARD 
—___ 


12 days left on your Trial. ( Upgrade Now! ) 


INVENTORY USERS REPORTS CONFIGURATIONS H a M 


FIXED VULNERABILITIES 
showing last 1 day 
8 
6 e 
È Trend data not yet available 
2 
È Today 
VULNERABILITIES BY TYPE 
Potential 
Confirn 


TOP 10 VULNERABILITIES OF SEVERITY 3-5 


Google Android September 2019 Security Update 


ssing For Samsu 


Google Android October 2019 Security Updat 


fissing For Samsung 
Google Android July 2019 Security Updates Missing For Samsung 
Google Android August 2019 Security Updates Missing For Samsung 
Google Android June 2019 Security Updates Missing For Samsung 
Google Android March 2019 Security Updates Missing For Huawei EMU! 


Apple iOS 12.4.2 Security Undate Missina DE 


Visibility into Security Posture 


Asset Summary 


Last Seen: Nov 21, 2019 10:42:02 PM IST (12 days ago) 


Rohit_Android_samsung_1 + 
1 


Status: Enrolled 
Identification 
Mode: Active 
Ownership: Corporate - Owned 
IMEI: 357192107030334 
MAC Address: 48:9D:D1:C4:69:27 
UDID: 9981B7D86481CD5BAB3CC2E663D0DA0 
F4F65AD8E 
Asset ID: 267219 
Username: RohitJain 


Security Posture 


Vulnerable: 
Encryption: 
Unauthorized Root Access: 


Passcode Present: 


Yes 
Encryption Complete 
No 


No 


Last Location 


United States 
Last Seen: an hour ago 06:00 pm 
Connected From: 10.11.43,33 
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Vulnerab 


Same user experience 


as any other asset in 
Qualys 


ilities 


< Asset Details: Peter_iOS_Apple 


« 


INVENTORY 

Asset Summary 
System Information 
Network Information 
Asset Settings 

Apps 


CA Certificates 


« 


SECURITY 


Vulnerabilities 


« 


MANAGEMENT 
Actions 


Logs 


Vulnerabilities 


Vulnerabilities by Severity 


CONFIRMED VULNERABILITIES 


4 Total 
i | e 
Detections by Status 
Active 
Confirmed 4 Confirmed 
Potential 0 Potential 


POTENTIAL VULNERABILITIES 


View All (5) 


1 Total 


Last 7 Days v 


Fixed 


1 


Confirmed 0 


Potential 1 
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Active Device Operations 


@ Qualys. Express 


et Details: Admin_Android_Samsung 


CRI Actions 


These actions helps you to n Lio 


manage and prevent the ee i 
d ata loss p rese nt O n th e TE S 
Location Send Message 


droid asset from the web console 


mobile device ie eens RE 


v SECURITY 


‘ Switch to Poll Mode 


Vulnerabilities 
Switch to Poll Mode 


Security Tokens 


es communication with the 


ommunicate to the u 


t the interval net for your orga er Polling t 


ts, by default, are of Push Mode, meaning the se 


Y MANAGEMENT 


Actions Sync Data 
Logs Sync asset data with the server 


| Find Asset 


Find geo location of the asset as well as play ringtone on the asset 


De-enroll Asset 


De-enroll the asset. Once an asset is de-enrolled all corporate data on the asset is deleted 


Force De-enroll Asset 


De-enroll the 


able asset or If asset is in an unr 


erable stage, you may F. 


e de-enrollme: 


olled”. The system will keep tr lo reach the asset to 


® Factory Reset 


Admin can remotoly perform a ful 


fl i ! 
i i 


t receives a Message 
refer BYOD Rules. 


information, 


Capabilities and Roadmap 


e Visibility e iOS Agent e Policy e Integration with 
e Inventory Release Compliance other EMM 
e Over 100 data e OS e CIS, NIST, e Zero Trust 
points indexed Vulnerabilities NIAP, OWASP ° Enterprise 
e Integration with e App Top 10 Connectors 
GlobalAI vulnerabilities e App e Agentless 
(Part 1) (Beta) vulnerabilities 
(Part 2) (Beta) 
e Application 
Management 


Phase 1 (Beta) 
e AFW (Beta) 
e DEP (Beta) 
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